227 lines
8.9 KiB
Plaintext
227 lines
8.9 KiB
Plaintext
# ==== Purpose ====
|
|
#
|
|
# Verify that a slave without replication privileges has
|
|
# Slave_IO_Running = No
|
|
#
|
|
# ==== Method ====
|
|
#
|
|
# We do the following steps:
|
|
# - Create a new replication user on master
|
|
# - Connect to slave and start replication as this user.
|
|
# - Verify that slave can replicate well, by creating a table and
|
|
# inserting a row into it.
|
|
# - Delete the user from the master.
|
|
# - Stop and start the slave (this should fail).
|
|
# - Check the Slave_IO_Running column of SHOW SLAVE STATUS.
|
|
#
|
|
# ==== Related bugs and modifications ====
|
|
#
|
|
# BUG#10780: slave can't connect to master - IO and SQL threads running
|
|
#
|
|
# Added scenario for testing WL#2284:
|
|
# - a) Replaced 'rpl' user name to 'rpluser_with_length_32_123456789'
|
|
# i.e with increased length of 32.
|
|
# - b) Connect to master through new user name of increased length.
|
|
#
|
|
# Added few replication cases related to WL#9591
|
|
|
|
--source include/not_group_replication_plugin.inc
|
|
--source include/master-slave.inc
|
|
|
|
--echo ==== Create new replication user ====
|
|
--echo [on master]
|
|
connection master;
|
|
CREATE USER rpluser_with_length_32_123456789@127.0.0.1 IDENTIFIED BY 'rpl';
|
|
--error ER_WRONG_STRING_LENGTH
|
|
CREATE USER rpluser_with_length_32_1234567890@127.0.0.1 IDENTIFIED BY 'rpl';
|
|
GRANT REPLICATION SLAVE ON *.* TO rpluser_with_length_32_123456789@127.0.0.1;
|
|
|
|
--echo [on slave]
|
|
--source include/sync_slave_sql_with_master.inc
|
|
source include/stop_slave.inc;
|
|
--replace_column 2 ####
|
|
CHANGE MASTER TO master_user='rpluser_with_length_32_123456789',
|
|
master_password='rpl', get_master_public_key = 1;
|
|
source include/start_slave.inc;
|
|
|
|
--echo ==== Do replication as new user ====
|
|
--echo [on master]
|
|
connection master;
|
|
CREATE TABLE t1 (n INT);
|
|
INSERT INTO t1 VALUES (1);
|
|
--echo [on slave]
|
|
--source include/sync_slave_sql_with_master.inc
|
|
SELECT * FROM t1;
|
|
|
|
--echo ==== Delete new replication user ====
|
|
--echo [on master]
|
|
connection master;
|
|
DROP USER rpluser_with_length_32_123456789@127.0.0.1;
|
|
FLUSH PRIVILEGES;
|
|
|
|
--echo [on slave]
|
|
--source include/sync_slave_sql_with_master.inc
|
|
|
|
--echo ==== Restart slave without privileges =====
|
|
# (slave.err will contain access denied error for this START SLAVE command)
|
|
source include/stop_slave.inc;
|
|
START SLAVE;
|
|
source include/wait_for_slave_sql_to_start.inc;
|
|
--let $slave_io_errno= convert_error(ER_ACCESS_DENIED_ERROR)
|
|
source include/wait_for_slave_io_to_stop.inc;
|
|
|
|
--echo ==== Verify that Slave IO thread stopped with error ====
|
|
# 1045 = ER_ACCESS_DENIED_ERROR
|
|
--let $slave_io_errno= 1045
|
|
--source include/wait_for_slave_io_error.inc
|
|
|
|
#
|
|
# Bug #77732 REGRESSION: REPLICATION FAILS FOR INSUFFICIENT PRIVILEGES
|
|
# Proving the bug fixes. Created user's privileges - REPLICATION and SLAVE -
|
|
# alone must suffice to successful connecting even with show handler
|
|
# not compatible to 5.6.
|
|
#
|
|
--echo [on master]
|
|
--connection master
|
|
CREATE USER rpluser_plain@127.0.0.1 IDENTIFIED BY 'rpl';
|
|
GRANT REPLICATION SLAVE ON *.* TO rpluser_plain@127.0.0.1;
|
|
|
|
--echo [on slave]
|
|
--connection slave
|
|
source include/stop_slave.inc;
|
|
CHANGE MASTER TO master_user='rpluser_plain', master_password='rpl', get_master_public_key = 1;
|
|
source include/start_slave.inc;
|
|
|
|
--echo [on master]
|
|
--connection master
|
|
DROP USER rpluser_plain@127.0.0.1;
|
|
FLUSH PRIVILEGES;
|
|
|
|
--echo [on slave]
|
|
--connection slave
|
|
source include/stop_slave.inc;
|
|
|
|
--echo # Resetting replication user to root
|
|
--source include/stop_slave_sql.inc
|
|
--replace_column 2 ####
|
|
CHANGE MASTER TO MASTER_USER = 'root', MASTER_PASSWORD = '';
|
|
--let $rpl_only_running_threads= 1
|
|
--source include/rpl_reset.inc
|
|
|
|
--echo # Replication Tests related to WL#9591 and WL#11057
|
|
--echo # Check if replication takes place when slave user
|
|
--echo # created with caching_sha2_pasword
|
|
--echo [on master]
|
|
connection master;
|
|
CREATE USER u1_caching_sha2_password@127.0.0.1 IDENTIFIED WITH
|
|
'caching_sha2_password' BY 'pwd';
|
|
GRANT all ON *.* TO u1_caching_sha2_password@127.0.0.1;
|
|
|
|
--echo [on slave]
|
|
--source include/sync_slave_sql_with_master.inc
|
|
source include/stop_slave.inc;
|
|
--echo # Set the user created with authentication plugin caching_sha2_password
|
|
--echo # as replication slave user and get RSA public key from master
|
|
--replace_column 2 ####
|
|
CHANGE MASTER TO master_user='u1_caching_sha2_password', master_password='pwd', master_ssl=0, get_master_public_key = 1;
|
|
source include/start_slave.inc;
|
|
|
|
--echo # Do replication with the user created with
|
|
--echo # authentication plugin caching_sha2_password
|
|
|
|
--echo [on master]
|
|
connection master;
|
|
CREATE USER u2 IDENTIFIED WITH 'caching_sha2_password' BY 'pwd_u2';
|
|
--echo # Below steps ensures that password is not cached initially and
|
|
--echo # After successful login, it is cached. Hence same login statement
|
|
--echo # with which login was denied earlier is allowed now
|
|
--error 1
|
|
--exec $MYSQL --host=127.0.0.1 -P $MASTER_MYPORT -uu2 -ppwd_u2 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--exec $MYSQL --host=127.0.0.1 -P $MASTER_MYPORT -uu2 -ppwd_u2 -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--exec $MYSQL --host=127.0.0.1 -P $MASTER_MYPORT -uu2 -ppwd_u2 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--echo [on slave]
|
|
--source include/sync_slave_sql_with_master.inc
|
|
--echo # On slave it is ensured that password cached on master is not replicated
|
|
--echo # and after successful login on slave, it is cached
|
|
--error 1
|
|
--exec $MYSQL --host=127.0.0.1 -P $SLAVE_MYPORT -uu2 -ppwd_u2 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--exec $MYSQL --host=127.0.0.1 -P $SLAVE_MYPORT -uu2 -ppwd_u2 -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--exec $MYSQL --host=127.0.0.1 -P $SLAVE_MYPORT -uu2 -ppwd_u2 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
|
|
--echo [on master]
|
|
connection master;
|
|
FLUSH PRIVILEGES;
|
|
--echo # Ensure that affect of FLUSH PRIVILEGE is propagated and cache from slave is also cleaned
|
|
--error 1
|
|
--exec $MYSQL --host=127.0.0.1 -P $MASTER_MYPORT -uu2 -ppwd_u2 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--echo [on slave]
|
|
--source include/sync_slave_sql_with_master.inc
|
|
--error 1
|
|
--exec $MYSQL --host=127.0.0.1 -P $SLAVE_MYPORT -uu2 -ppwd_u2 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
|
|
--echo [on slave]
|
|
connection slave;
|
|
source include/stop_slave.inc;
|
|
--echo # Set the user created with authentication plugin caching_sha2_password
|
|
--echo # as replication slave user and get RSA public key from master
|
|
--replace_result $MYSQL_TEST_DIR MYSQL_TEST_DIR
|
|
--eval CHANGE MASTER TO master_user='u1_caching_sha2_password', master_password='pwd', master_public_key_path='$MYSQL_TEST_DIR/std_data/rsa_public_key.pem', get_master_public_key = 0;
|
|
source include/start_slave.inc;
|
|
|
|
--echo # Do replication with the user created with
|
|
--echo # authentication plugin caching_sha2_password
|
|
|
|
--echo [on master]
|
|
connection master;
|
|
CREATE USER u3 IDENTIFIED WITH 'caching_sha2_password' BY 'pwd_u3';
|
|
--echo # Below steps ensures that password is not cached initially and
|
|
--echo # After successful login, it is cached. Hence same login statement
|
|
--echo # with which login was denied earlier is allowed now
|
|
--error 1
|
|
--exec $MYSQL --host=127.0.0.1 -P $MASTER_MYPORT -uu3 -ppwd_u3 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--exec $MYSQL --host=127.0.0.1 -P $MASTER_MYPORT -uu3 -ppwd_u3 -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--exec $MYSQL --host=127.0.0.1 -P $MASTER_MYPORT -uu3 -ppwd_u3 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--echo [on slave]
|
|
--source include/sync_slave_sql_with_master.inc
|
|
--echo # On slave it is ensured that password cached on master is not replicated
|
|
--echo # and after successful login on slave, it is cached
|
|
--error 1
|
|
--exec $MYSQL --host=127.0.0.1 -P $SLAVE_MYPORT -uu3 -ppwd_u3 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--exec $MYSQL --host=127.0.0.1 -P $SLAVE_MYPORT -uu3 -ppwd_u3 -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--exec $MYSQL --host=127.0.0.1 -P $SLAVE_MYPORT -uu3 -ppwd_u3 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
|
|
--echo [on master]
|
|
connection master;
|
|
FLUSH PRIVILEGES;
|
|
--echo # Ensure that affect of FLUSH PRIVILEGE is prpoagated and cache from slave is also cleaned
|
|
--error 1
|
|
--exec $MYSQL --host=127.0.0.1 -P $MASTER_MYPORT -uu3 -ppwd_u3 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
--echo [on slave]
|
|
--source include/sync_slave_sql_with_master.inc
|
|
--error 1
|
|
--exec $MYSQL --host=127.0.0.1 -P $SLAVE_MYPORT -uu3 -ppwd_u3 --ssl-mode=DISABLED -e "SELECT USER(), CURRENT_USER()" 2>&1
|
|
|
|
--echo [on slave]
|
|
--connection slave
|
|
source include/stop_slave.inc;
|
|
|
|
--echo ==== Cleanup (Note that slave IO thread is not running) ====
|
|
# cleanup: slave io thread has stopped so we reset replication
|
|
--replace_column 2 ####
|
|
CHANGE MASTER TO MASTER_USER = 'root', MASTER_PASSWORD = '';
|
|
# clear Slave_IO_Errno
|
|
--let $rpl_only_running_threads= 1
|
|
--source include/rpl_reset.inc
|
|
|
|
--echo [on master]
|
|
connection master;
|
|
DROP TABLE t1;
|
|
DROP USER u1_caching_sha2_password@127.0.0.1;
|
|
DROP USER u2, u3;
|
|
|
|
--source include/rpl_end.inc
|
|
--source include/force_restart.inc
|
|
|
|
--connection master
|
|
--source suite/xengine/include/check_xengine_log_error.inc
|